$ rpki-client -vvf rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft File: y7aOmQU8HeJHirvi3_KrzsDRsUg.mft (raw, json) Hash identifier: p5jMc+FvWCNaUcIttRuwf4jusMKkgTf618Bqpicx6b0= Subject key identifier: 38:CF:B6:A4:9D:07:01:1C:83:67:D0:72:BA:C1:1F:92:E7:30:1B:70 Authority key identifier: CB:B6:8E:99:05:3C:1D:E2:47:8A:BB:E2:DF:F2:AB:CE:C0:D1:B1:48 Certificate issuer: /CN=A9149905/serialNumber=CBB68E99053C1DE2478ABBE2DFF2ABCEC0D1B148 Certificate serial: 33C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft Manifest number: 33BF Signing time: Thu 02 May 2024 15:05:41 +0000 Manifest this update: Thu 02 May 2024 15:05:40 +0000 Manifest next update: Thu 09 May 2024 15:05:40 +0000 Files and hashes: 1: y7aOmQU8HeJHirvi3_KrzsDRsUg.crl (hash: aLTmp1xE7brywPPRfWk6bD/KmmQKwVQin8e+dlfsbHc=) 2: A6D6CA7E022C11EBAC47A831C4F9AE02.roa (hash: zCjW74BNINc4Oe8jK6oFEsAHN/HQVGCYlLcNtLolElw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.crl rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 15:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13252 (0x33c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149905/serialNumber=CBB68E99053C1DE2478ABBE2DFF2ABCEC0D1B148 Validity Not Before: May 2 15:05:40 2024 GMT Not After : May 9 15:05:40 2024 GMT Subject: CN=6633abc5-f0c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:1f:34:7f:c9:93:4a:76:12:2a:72:96:1b:1c: 8b:bf:25:30:c4:d3:3a:b2:cc:28:14:df:27:f3:9c: 95:d0:73:a0:56:c0:89:fc:c8:30:f5:e5:c0:ac:1b: 72:c0:4d:95:2c:4f:1b:51:f9:9c:16:7e:d4:21:c6: 22:76:27:8a:cc:4c:00:6f:68:26:05:71:1b:03:05: 39:e8:49:c3:68:9f:9f:a1:71:da:0c:5b:b4:b6:fd: 01:4c:f0:83:c9:7e:84:36:76:84:d9:f7:5d:65:40: 41:74:e9:31:85:58:c2:83:2b:17:d6:ff:c0:7f:56: 81:95:91:73:7c:c0:1d:f0:87:d6:db:6a:0b:76:5f: e5:2b:1b:0c:6f:17:43:f9:82:5c:88:44:c9:83:c4: 1b:e5:1c:be:c8:be:53:99:57:fa:c6:f1:69:63:3d: 45:a9:07:ce:0b:65:42:51:13:38:85:75:ea:18:01: 72:20:82:f4:be:6e:f6:2a:22:ff:fd:ed:46:b2:87: b6:eb:72:e8:2e:42:f8:a0:af:db:db:55:00:71:df: 7c:d8:30:2f:e3:85:b9:84:0b:a5:fb:d9:a9:ec:65: e1:6f:bc:0b:95:d5:22:e8:62:6f:1c:3c:90:00:8c: 0c:d0:ed:75:ea:20:59:72:17:8c:2f:6d:7d:59:ed: f0:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:CF:B6:A4:9D:07:01:1C:83:67:D0:72:BA:C1:1F:92:E7:30:1B:70 X509v3 Authority Key Identifier: keyid:CB:B6:8E:99:05:3C:1D:E2:47:8A:BB:E2:DF:F2:AB:CE:C0:D1:B1:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:d1:2f:5f:0a:81:d7:9e:90:b1:35:f2:65:e5:88:e4:ca:ac: 94:7f:2d:bb:94:9b:0d:b6:89:b3:53:86:13:50:aa:0f:b1:e0: c0:d1:0e:8b:18:3b:09:c1:2e:e8:93:15:fd:f5:21:c8:f5:cc: ff:d1:ce:02:32:1f:bb:04:e4:e3:64:c4:21:78:04:62:31:26: c9:44:cd:00:b1:f0:9f:9d:d6:11:c8:8c:f1:21:2a:91:76:e8: 7e:3e:7d:46:c6:e4:00:8a:b0:0b:bc:5f:c1:ec:4f:f2:50:12: 9e:34:d9:c4:72:3a:84:85:b9:97:51:f6:2d:41:ac:6a:b5:2d: 7e:9a:fb:fb:b1:a0:e3:5c:43:d8:03:1f:4c:41:1b:43:44:51: 98:5e:0d:b4:ce:1c:5b:94:be:37:61:de:1a:50:ab:a2:ee:bd: e1:5c:d2:25:7f:a9:a0:c3:2b:0f:3d:84:c4:60:06:8b:62:b9: 2e:b1:b9:61:d7:0e:34:2c:fd:fd:e7:d0:da:c4:29:1f:55:bc: f1:57:d9:a0:86:59:98:93:88:90:9a:c6:80:75:46:b0:be:c2: 8d:eb:42:41:8d:72:5d:b3:75:be:6e:02:e3:a0:21:78:d2:9a: b0:3a:d8:5a:d8:99:9b:e0:d3:9d:16:46:4b:f6:e0:ad:68:8c: 03:2c:57:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk5MDUxMTAvBgNVBAUTKENCQjY4RTk5MDUzQzFERTI0NzhBQkJFMkRGRjJBQkNF QzBEMUIxNDgwHhcNMjQwNTAyMTUwNTQwWhcNMjQwNTA5MTUwNTQwWjAYMRYwFAYD VQQDEw02NjMzYWJjNS1mMGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyx80f8mTSnYSKnKWGxyLvyUwxNM6sswoFN8n85yV0HOgVsCJ/Mgw9eXArBty wE2VLE8bUfmcFn7UIcYidieKzEwAb2gmBXEbAwU56EnDaJ+foXHaDFu0tv0BTPCD yX6ENnaE2fddZUBBdOkxhVjCgysX1v/Af1aBlZFzfMAd8IfW22oLdl/lKxsMbxdD +YJciETJg8Qb5Ry+yL5TmVf6xvFpYz1FqQfOC2VCURM4hXXqGAFyIIL0vm72KiL/ /e1Gsoe263LoLkL4oK/b21UAcd982DAv44W5hAul+9mp7GXhb7wLldUi6GJvHDyQ AIwM0O116iBZcheML219We3wRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjPtqSd BwEcg2fQcrrBH5LnMBtwMB8GA1UdIwQYMBaAFMu2jpkFPB3iR4q74t/yq87A0bFI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTkwNS8zOTREMDY0QTFE OUIxMUUyQkUxMkVGODgwOEIwMkNEMi95N2FPbVFVOEhlSkhpcnZpM19LcnpzRFJz VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k3YU9tUVU4SGVKSGlydmkzX0tyenNEUnNVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTkwNS8zOTREMDY0QTFEOUIxMUUyQkUxMkVGODgwOEIwMkNEMi95N2FPbVFVOEhl SkhpcnZpM19LcnpzRFJzVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv0S9fCoHXnpCxNfJl5YjkyqyUfy27lJsNtomzU4YTUKoPseDA0Q6L GDsJwS7okxX99SHI9cz/0c4CMh+7BOTjZMQheARiMSbJRM0AsfCfndYRyIzxISqR duh+Pn1GxuQAirALvF/B7E/yUBKeNNnEcjqEhbmXUfYtQaxqtS1+mvv7saDjXEPY Ax9MQRtDRFGYXg20zhxblL43Yd4aUKui7r3hXNIlf6mgwysPPYTEYAaLYrkusblh 1w40LP3959DaxCkfVbzxV9mghlmYk4iQmsaAdUawvsKN60JBjXJds3W+bgLjoCF4 0pqwOtha2Jmb4NOdFkZL9uCtaIwDLFfq -----END CERTIFICATE-----Generated at Thu May 2 17:18:28 2024 by rpki-client on console-ams.rpki-client.org